Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/GhV3yDsCF_zIqNEW9uAp5B7tCfY.roa
File: GhV3yDsCF_zIqNEW9uAp5B7tCfY.roa (raw, json)
Hash identifier: fzv8QEiT/1XjRudOHIXqVv5Bt25SlercY9PP1Py8+6s=
Subject key identifier: 1A:15:77:C8:3B:02:17:FC:C8:A8:D1:16:F6:E0:29:E4:1E:ED:09:F6
Certificate issuer: /CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Certificate serial: 01900112C8433D49301A9DE22992946913DC
Authority key identifier: 22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/GhV3yDsCF_zIqNEW9uAp5B7tCfY.roa
Signing time: Mon 10 Jun 2024 07:35:26 +0000
ROA not before: Mon 10 Jun 2024 07:35:26 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 152878
IP address blocks: 45.8.93.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 08 Jul 2024 08:40:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:01:12:c8:43:3d:49:30:1a:9d:e2:29:92:94:69:13:dc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Validity
Not Before: Jun 10 07:35:26 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=1a1577c83b0217fcc8a8d116f6e029e41eed09f6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:56:29:37:bf:41:ef:f2:7f:22:b8:68:6e:3c:
ba:65:a3:fb:4c:c7:95:f7:d8:13:f9:2d:8d:20:8c:
96:01:c3:d0:92:c6:76:6b:92:6b:b6:1a:5b:38:5b:
d1:c0:2a:8f:36:80:b3:8b:33:dc:c0:16:41:ac:f6:
66:8e:fd:2d:74:1a:1e:40:a8:b7:ce:57:2d:a6:1d:
74:70:7a:7b:a9:80:d8:e3:76:40:3b:18:a0:63:75:
05:40:87:59:85:b2:09:ea:f3:98:ce:c2:1f:ea:b4:
88:08:93:22:cd:67:3c:b7:8f:03:30:32:98:71:9a:
49:0d:87:61:8b:12:af:61:62:ea:d9:ab:e2:53:ac:
06:80:36:c8:d7:74:c8:d9:8b:c6:2f:86:aa:38:88:
92:02:78:38:b9:fa:4b:07:ba:d3:69:78:8f:5a:98:
89:5e:b2:64:11:17:60:5f:aa:cd:0d:22:42:ad:35:
d9:a8:80:ec:23:cc:5c:f2:8a:8a:75:44:c4:74:04:
51:76:f6:1f:34:bb:fe:61:2f:6b:51:b4:2e:8a:61:
36:1c:d8:31:e8:a9:02:54:5b:3e:91:af:8d:9b:1f:
c8:8d:7c:59:9b:1f:a2:ed:fe:c1:e6:a6:cd:75:03:
4c:e2:f5:5e:33:19:d3:4e:32:da:d2:6b:7e:68:62:
60:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:15:77:C8:3B:02:17:FC:C8:A8:D1:16:F6:E0:29:E4:1E:ED:09:F6
X509v3 Authority Key Identifier:
keyid:22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/GhV3yDsCF_zIqNEW9uAp5B7tCfY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.8.93.0/24
Signature Algorithm: sha256WithRSAEncryption
4d:88:dd:4b:ec:fe:3b:ba:86:73:4e:cb:bc:5b:88:97:37:a7:
12:54:b9:d4:50:19:2d:ef:b3:a7:79:2d:5a:f4:0a:c9:4e:75:
ce:b5:9f:2f:c3:71:d7:16:af:60:6b:84:20:fc:1f:de:8f:ea:
32:c8:17:67:ae:da:49:a8:eb:ac:dd:e3:27:dd:a0:0a:78:5c:
4b:3b:bd:c7:41:a5:3c:6c:fb:08:76:0e:0b:37:6b:79:af:b4:
e2:30:ad:a8:56:f3:0e:0a:bb:c1:ab:11:9d:93:b4:27:17:36:
54:07:b9:d3:94:d9:c2:8a:f4:94:92:f4:28:b8:79:56:dd:e2:
59:9c:e6:a8:48:4c:95:db:7f:75:b8:4f:1c:0c:07:f2:8e:c3:
cc:d6:c4:21:f0:5d:d0:4c:0d:43:89:87:f5:a6:ae:93:1c:e8:
e2:af:90:e7:b3:28:3f:8c:c7:06:b9:77:ff:89:8b:be:19:ce:
51:30:a6:fe:41:f2:8f:fd:f9:f7:4d:07:b0:0d:88:07:4c:8e:
71:84:5d:cd:44:14:72:f7:49:c5:e1:40:bb:1b:72:a1:fb:93:
6d:62:ae:39:69:f2:a8:ba:fd:5c:1c:34:93:d2:91:c5:a6:fc:
96:3f:05:39:f3:94:2f:fd:0a:52:1c:a0:b6:d7:ad:be:b5:d5:
cf:9a:c9:f6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jul 8 10:40:49 2024 by rpki-client on console-ams.rpki-client.org